Troubleshooting

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2020:0320-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-19316 Upstream summary: When using the Azure backend with a shared access signature (SAS), Terraform versions prior to 0.12.17 may transmit the token and state […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SA:2006:027 (see also SUSE bugzilla) Related CVEs: CVE-2006-2607 CVE-2010-0424 CVE-2019-9704 CVE-2019-9705 Upstream summary: do_command.c in Vixie cron (vixie-cron) 4.1 does not check the return code of a setuid call, which might allow […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2021:0800-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-13936 Upstream summary: An attacker that is able to modify Velocity templates may execute arbitrary Java code or run arbitrary system commands with the same […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2022:2798-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-24330 CVE-2020-24331 CVE-2020-24332 CVE-2019-18898 Upstream summary: An issue was discovered in TrouSerS through 0.3.14. If the tcsd daemon is started with root privileges instead of […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2019-25058 Upstream summary: An issue was discovered in USBGuard before 1.1.0. On systems with the usbguard-dbus daemon running, an unprivileged user could make USBGuard allow […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2017:3234-1 (see also SUSE bugzilla) Related CVEs: CVE-2017-16853 CVE-2025-31335 Upstream summary: The DynamicMetadataProvider class in saml/saml2/metadata/impl/DynamicMetadataProvider.cpp in OpenSAML-C in OpenSAML before 2.6.1 fails to properly configure itself with the MetadataFilter plugins and […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2019:0284-1 (see also SUSE bugzilla) Related CVEs: CVE-2015-3239 Upstream summary: Off-by-one error in the dwarf_to_unw_regnum function in include/dwarf_i.h in libunwind 1.1 allows local users to have unspecified impact via invalid dwarf opcodes. […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:3960-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-41311 CVE-2023-0996 CVE-2025-68431 CVE-2023-49460 CVE-2023-49462 CVE-2023-49463 CVE-2023-49464 CVE-2020-23109  +2 more Upstream summary: In Libheif 1.17.6, insufficient checks in ImageOverlay::parse() decoding a heif file containing an […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2017:0122-1 (see also SUSE bugzilla) Related CVEs: CVE-2016-1246 CVE-2016-1251 CVE-2017-10788 CVE-2017-10789 CVE-2016-1249 Upstream summary: Buffer overflow in the DBD::mysql module before 4.037 for Perl allows context-dependent attackers to cause a denial of […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2013-2139 CVE-2015-6360 Upstream summary: Buffer overflow in srtp.c in libsrtp in srtp 1.4.5 and earlier allows remote attackers to cause a denial of service (crash) […]